Latest
Building from source fails with The exception was thrown with the wrong message when system locale is not English
The purpose of this article is to provide assistance if building from source using Apache Maven™ fails with the following exception when the system locale is not English: "FAILURE! org.testng.TestException: The exception was thrown with the wrong message". This article applies to all ForgeRock products (AM, Agents, DS, IDM and IG).
Where can I find useful logs for troubleshooting ForgeRock products?
The purpose of this article is to provide information on finding logs across ForgeRock products (AM, DS, IDM and IG) for troubleshooting purposes. This article shows default log locations, although most of them can be changed.
Agent and IG session numbers keep growing in the CTS store in AM (All versions)
The purpose of this article is to provide assistance if you see increasing Agent and IG session numbers in the Core Token Service (CTS) store, where the sessions have an expiration date of 42 years.
Checking your product versions are supported
The purpose of this article is to provide EOSL dates for the specific ForgeRock products and versions you are running so you can check that the version you are on is still supported. This also includes dates for Identity Cloud downloadable components.
SAML2 federation fails with a SSO Failed: Invalid Assertion Consumer Location specified error in IG (All versions)
The purpose of this article is to provide assistance if the SAML2 federation flow fails with an "SSO Failed: Invalid Assertion Consumer Location specified" error in IG.
How do I set up signing and encryption for IG 6.x and 7 when it is acting as the SAML 2.0 SP?
The purpose of this article is to provide information on configuring signing and encryption in IG when it is acting as the Service Provider (SP) for SAML federation. You can either do this via the fedletEncode.jsp or scripting.
Best practice for JVM Tuning with G1 GC
The purpose of this article is to provide best practice advice on JVM tuning with G1 GC; including understanding heap space and the available JVM options. This best practice advice applies to AM, DS, IDM and IG running on Java® 11. JVM tuning is not an exact science and will vary across individual environments and applications. Consistent load and stress testing of your environment will be the only true way to gauge the effect of changes made.
How do I create a HAR file for troubleshooting IG (All versions)?
The purpose of this article is to provide information on creating a HAR file (HTTP ARchive) for troubleshooting IG.
How do I generate more detailed debug logs to diagnose an issue in IG (All versions)?
The purpose of this article is to provide strategies for increasing the information contained in the logs and collecting debug logs when troubleshooting IG issues. This includes collecting message level SAML logs if you are using IG for SAML federation.
How do I configure IG (All versions) to load properties from multiple configuration files?
The purpose of this article is to provide information on configuring IG to load properties from multiple JSON configuration files.
Books
Security Advisories
This book provides all the security advisories for ForgeRock products (AM, DS, IDM and IG).
Performance tuning and monitoring ForgeRock products
This book provides information on performance tuning and monitoring ForgeRock products (AM, DS, IDM and IG).
SAML federation in IG
This book provides information on SAML federation in IG and includes help on configuring federation and debug logging.
Troubleshooting IG
This book provides information on troubleshooting various issues in IG including collecting useful troubleshooting information such as logs, heap dumps and stack traces.
Installing and configuring IG
This book provides information on installing and configuring IG including frequently asked questions.
Source code in ForgeRock products
This book provides information on source code and binaries in ForgeRock products (AM, DS, IDM and IG).
Platform compatibility
This book provides information on compatibility between ForgeRock products (AM, DS, IDM and IG).
Security Advisories
OpenIG Security Advisory #201606
A security vulnerability has been discovered in OpenIG when using JwtSession.